March 14, 2023—KB5023756 (Monthly Rollup) (2024)

Release Date:

3/14/2023

Version:

Monthly Rollup

IMPORTANT For Windows Server 2012, the end of support (EOS) date is October 10, 2023. Extended Security Updates (ESUs) will be available for purchase no later than October 2022, but available for installation after the EOS date, October 10, 2023. ESUs will continue for three years, renewable on an annual basis, until the final date on October 13, 2026.

Learn more about the ESU program Learn more about upgrading Windows Server

Summary

Learn more about this security-only update, including improvements, any known issues, and how to get the update.

Notes

  • Verify that you have installed the required updates listed in the How to get this update section before installing this update.

  • For information about the various types of Windows updates, such as critical, security, driver, service packs, and so on, please see the following article. To view other notes and messages, see the Windows Server 2012 update history home page.

Improvements

This cumulative security update contains improvements that are part of update KB5022903 (released February 14, 2023). This update also makes improvements for the following issues:

  • After applying a Windows update released on or after July 12, 2022, hyperlinks embedded in an Office document that use the search-ms protocol might stop working.

  • The Local Security Authority Subsystem Service (Lsass.exe) might stop responding after System Preparation (sysprep) is run on a domain-joined device.

  • After applying a Windows update released on or after November 8, 2022 on a server running Windows Server 2012, audio loss might occur.

  • By order of the Mexican government in October 2022, the United Mexican States will not observe daylight saving time (DST) in 2023. Key changes in the order include the following:

    • Updated DST rules for Mountain Standard Time (Mexico) and Central Standard Time (Mexico) to no daylight saving time starting in 2023.

    • Changed Chihuahua time zone from (UTC -7:00) Mountain Standard Time (Mexico) to (UTC -6:00) Central Standard Time (Mexico).

    • Changed Ojinaga time zone from (UTC -7:00) Mountain Standard Time (Mexico) to (UTC -6:00) Central Standard Time (Mexico)

    • Created a new time zone America/Ciudad_Juarez and mapped it to Mountain Standard Time (Mexico).

  • This update implements the final phase of DCOM hardening as described in KB5004442. This phase removes the ability to disable changes through the registry.

For more information about the resolved security vulnerabilities, please refer to the Deployments | Security Update Guide and the March 2023 Security Updates.

Known issues in this update

Symptom

Next step

After this update or a later Windows update is installed, domain join operations might be unsuccessful and error "0xaac (2732): NERR_AccountReuseBlockedByPolicy" occurs. Additionally, text stating "An account with the same name exists in Active Directory. Re-using the account was blocked by security policy" might be displayed.

Affected scenarios include some domain join or re-imaging operations where a computer account was created or pre-staged by a different identity than the identity used to join or re-join the computer to the domain.

For more information about this issue, see KB5020276—Netjoin: Domain join hardening changes.

Note Consumer Desktop editions of Windows are unlikely to experience this issue.

Please see KB5020276 for guidance on this issue.

Because this version of Windows is at or near the end of support (EOS), we recommend upgrading to a later version of Windows. For more information, see Get the latest Windows update.

How to get this update

Before installing this update

We strongly recommend that you install the latest servicing stack update (SSU) for your operating system before installing the latest Rollup. SSUs improve the reliability of the update process to mitigate potential issues while installing the Rollup and applying Microsoft security fixes. For general information about SSUs, see Servicing stack updates and Servicing Stack Updates (SSU): Frequently Asked Questions.

If you use Windows Update, the latest SSU (KB5023791) will be offered to you automatically. To get the standalone package for the latest SSU, search for it in the Microsoft Update Catalog.

Language packs

If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update.

Learn about adding a language pack to Windows

Install this update

Release Channel

Available

Next Step

Windows Update and Microsoft Update

Yes

None. This update will be downloaded and installed automatically from Windows Update.

Microsoft Update Catalog

Yes

To get the standalone package for this update, go to the Microsoft Update Catalog website.

Windows Server Update Services (WSUS)

Yes

This update will automatically sync with WSUS if you configure Products and Classifications as follows:

Product: Windows Server 2012, Windows Embedded 8 Standard

Classification: Security Updates

File information

For a list of the files that are provided in this update, download the file information for update KB5023756.

References

Learn about the standard terminology that is used to describe Microsoft software updates.

March 14, 2023—KB5023756 (Monthly Rollup) (2024)

FAQs

What is the monthly security update for March 2023? ›

Microsoft Patches for March 2023

Microsoft has also addressed two zero-day vulnerabilities known to be exploited in the wild. CISA has also added those two vulnerabilities, CVE-2023-24880 and CVE-2023-23397, to its Known Exploitable Vulnerabilities Catalog after Microsoft released this month's Patch Tuesday update.

Will there be a Windows Server 2024? ›

Microsoft announced their new release of Windows Server 2024. Windows Server 2024 comes with many new features and improvements compared to the previous releases. This blog post will walk you through the best Windows Server 2024 features and requirements.

What is the Windows Server Annual Channel for containers? ›

Windows Server Annual Channel for Containers is an operating system to host Windows Server containers. Annual Channel enables customers who are innovating quickly to take advantage of new operating system capabilities at a faster pace, focusing on containers, microservices, and portability.

What version of .NET Framework comes with Windows 10 22H2? ›

NET Framework 3.5, 4.8 and 4.8. 1 for Windows 10 Version 22H2.

What is the Android security update for March 2024? ›

The second part of this month's Android update, which arrives on devices as the 2024-03-05 security patch level, resolves a total of 25 vulnerabilities in AMLogic, Arm, MediaTek, and Qualcomm components. Devices running a security patch level of 2024-03-05 are patched against all 38 security defects.

How to update Android security patch level on Samsung? ›

Get security updates & Google Play system updates

Open your device's Settings app. System & Updates. For security updates, tap Security Update. For Google Play system updates, tap Google Play system update.

What is the purpose of containers in Windows Server? ›

A container is an isolated, lightweight package for running an application on the host operating system. Containers build on top of the host operating system's kernel (which can be thought of as the buried plumbing of the operating system), as shown in the diagram below.

How do I know if I have SAC or LTSC? ›

Solution
  1. Look at the image name that the VM was started from:
  2. LTSC releases have the Windows Server release year in the name, e.g. windows-server-2016-dc-v20210112.
  3. SAC releases have the build number in the name, e.g. windows-server-1909-dc-core-v20210112.

Can I run Windows Server in a container? ›

On Windows nodes, strict compatibility rules apply where the host OS version must match the container base image OS version. Only Windows containers with a container operating system of Windows Server 2019 are fully supported.

Do I need the .NET Framework on my PC? ›

Why do I need .NET Framework? You need .NET Framework installed to run applications on Windows that were created using .NET Framework. It's already included in many versions of Windows. You only need to download and install .NET Framework if prompted to do so.

What is the issue with Windows Update April 2024? ›

Windows devices might face VPN connection failures after installing the update dated April 9, 2024, or later. This issue is addressed in KB5037771. After installing this update or later updates, you might face issues while upgrading from Windows Pro to a valid Windows Enterprise subscription.

What is the difference between .NET and .NET core? ›

NET framework helps you build web apps, desktop apps, and web services. It works only on the Windows operating system. On the other hand, . NET core is for creating cross-platform cloud apps that run on Windows, Mac, and Linux.

What is the Exchange March 2023 security update? ›

Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013: March 14, 2023 (KB5024296) This security update rollup resolves vulnerabilities in Microsoft Exchange Server. To learn more about these vulnerabilities, see the following Common Vulnerabilities and Exposures (CVE):

What is the patch Tuesday in March 2023? ›

Microsoft is offering fixes for 101 security issues for March 2023 Patch Tuesday, including two zero-day vulnerabilities; the most interesting of the two zero-day vulnerabilities is a flaw in Outlook which allows an attacker to authenticate against arbitrary remote resources as another user.

Is Android 10 receiving security updates? ›

As of April 2024, 8.82% of Android devices (mobile & tablet) ran Android 10 (which has ceased receiving security updates in March 2023).

What is meant by Android security patch level? ›

Android security patches are small updates that fix vulnerabilities in the software system. Vulnerabilities are flaws that attackers can exploit to harm your device or data. For example, a vulnerability could let an attacker run malicious code, gain unauthorized access, leak sensitive information or crash your device.

References

Top Articles
Latest Posts
Article information

Author: Ouida Strosin DO

Last Updated:

Views: 6064

Rating: 4.6 / 5 (76 voted)

Reviews: 91% of readers found this page helpful

Author information

Name: Ouida Strosin DO

Birthday: 1995-04-27

Address: Suite 927 930 Kilback Radial, Candidaville, TN 87795

Phone: +8561498978366

Job: Legacy Manufacturing Specialist

Hobby: Singing, Mountain biking, Water sports, Water sports, Taxidermy, Polo, Pet

Introduction: My name is Ouida Strosin DO, I am a precious, combative, spotless, modern, spotless, beautiful, precious person who loves writing and wants to share my knowledge and understanding with you.